$ rpki-client -vvf rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft File: kTOGkN66V4znOCGKniIIVNG1J18.mft (raw, json) Hash identifier: GWSWDu1VAxgegR5DGixi4Skh2zJcNhpblvLhn7hOkxQ= Subject key identifier: B3:19:2C:95:3D:8F:63:AB:91:03:18:61:94:11:6E:0F:3F:54:39:9E Authority key identifier: 91:33:86:90:DE:BA:57:8C:E7:38:21:8A:9E:22:08:54:D1:B5:27:5F Certificate issuer: /CN=A91F605B/serialNumber=91338690DEBA578CE738218A9E220854D1B5275F Certificate serial: 0490 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft Manifest number: 047D Signing time: Sun 19 Oct 2025 02:02:21 +0000 Manifest this update: Sun 19 Oct 2025 02:02:20 +0000 Manifest next update: Sun 26 Oct 2025 02:02:20 +0000 Files and hashes: 1: kTOGkN66V4znOCGKniIIVNG1J18.crl (hash: IavW2PQqZWtKYsb8tFRkYNT3do+GyUVDUketVdUt8+w=) 2: E7DBA61CA1FA11EF9696DF59C4F9AE02.roa (hash: 346r3b4w4VthONfD4bZWfxOP9wmeXPFHqji5dvclr0k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.crl rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:02:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1168 (0x490) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F605B, serialNumber=91338690DEBA578CE738218A9E220854D1B5275F Validity Not Before: Oct 19 02:02:20 2025 GMT Not After : Oct 26 02:02:20 2025 GMT Subject: CN=68f446ad-0626 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:fc:fe:64:fb:1c:c7:43:8b:d5:43:3e:99:ff: 49:be:33:69:52:43:1a:97:a5:39:6d:49:77:2a:51: a1:04:68:8a:e2:94:3a:48:1c:4f:96:3d:8b:fb:b3: 80:7f:d2:a9:5c:b8:a8:74:48:60:ea:81:3e:23:1c: ce:b2:85:12:28:33:a9:a9:2d:ee:70:c3:a9:63:0f: 59:cf:80:4e:3e:1b:1f:b8:63:9c:3b:63:d1:7f:c0: d6:75:ee:3c:3d:ec:ba:ce:50:58:85:5a:7f:1b:1e: 8d:65:d4:b6:0b:d1:4c:de:0c:f3:f1:95:85:d6:2c: e6:45:9f:e2:01:da:15:61:88:03:84:2e:8c:bb:f7: 36:6f:07:53:94:b2:28:61:2c:49:e9:57:61:b8:bc: 40:29:96:6f:a0:b6:5d:65:dc:17:94:62:31:20:e6: c4:0b:0f:07:a2:55:d8:c2:22:71:5a:b5:9b:96:94: 8c:04:ee:45:34:df:70:46:03:4a:42:ac:6d:44:2b: 13:ed:20:f6:5d:a9:d5:13:b9:51:da:2d:ad:b3:f8: cd:1e:bc:45:48:1f:09:6c:04:13:12:7a:2f:ff:f5: b6:4d:c0:6f:a0:1e:90:3b:af:c4:60:2b:87:f1:0f: ba:91:d9:55:cb:95:76:92:f6:8b:a9:94:3b:00:7e: 23:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:19:2C:95:3D:8F:63:AB:91:03:18:61:94:11:6E:0F:3F:54:39:9E X509v3 Authority Key Identifier: keyid:91:33:86:90:DE:BA:57:8C:E7:38:21:8A:9E:22:08:54:D1:B5:27:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:bb:3d:5d:bf:ea:c6:66:66:10:87:62:be:62:15:62:18:04: eb:b3:52:03:e7:bb:a2:87:76:af:f5:e5:da:1c:cf:a6:e3:af: 0c:7e:46:a1:60:1f:b2:e4:0b:71:76:b5:90:ec:6d:5c:83:e1: 86:eb:21:ab:7a:c0:05:47:9f:67:ca:67:ee:32:36:48:ec:c4: 86:c9:99:70:d8:91:fb:57:3e:6d:6a:8c:1d:08:38:d1:d3:59: 42:54:e4:6f:32:84:3c:55:cc:e8:1a:eb:c9:55:59:7c:df:76: ec:69:a8:e3:0f:7c:fd:7a:48:fe:ad:2f:92:d1:d5:53:f3:d2: 8e:4f:df:d2:93:fd:a5:b6:0a:8b:bc:d9:a9:5a:47:0a:81:0b: cb:c7:e1:bd:0b:0d:71:12:ef:5b:c1:8b:20:f4:89:cb:45:24: dc:40:69:20:ca:2b:09:28:33:98:7d:d4:50:b0:58:23:0a:af: 16:6d:47:b0:24:90:09:97:0b:76:1d:c8:fb:7e:e2:48:0b:aa: 72:4b:aa:7a:f8:cc:fc:38:9d:e5:39:f0:cd:2a:4e:63:ef:04: 85:78:02:50:84:78:63:c6:9d:cd:65:43:3a:af:98:63:f8:07: a8:24:68:98:50:24:8b:17:24:7a:e9:7c:6c:12:84:f8:cf:21: df:21:c1:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYwNUIxMTAvBgNVBAUTKDkxMzM4NjkwREVCQTU3OENFNzM4MjE4QTlFMjIwODU0 RDFCNTI3NUYwHhcNMjUxMDE5MDIwMjIwWhcNMjUxMDI2MDIwMjIwWjAYMRYwFAYD VQQDEw02OGY0NDZhZC0wNjI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvvz+ZPscx0OL1UM+mf9JvjNpUkMal6U5bUl3KlGhBGiK4pQ6SBxPlj2L+7OA f9KpXLiodEhg6oE+IxzOsoUSKDOpqS3ucMOpYw9Zz4BOPhsfuGOcO2PRf8DWde48 Pey6zlBYhVp/Gx6NZdS2C9FM3gzz8ZWF1izmRZ/iAdoVYYgDhC6Mu/c2bwdTlLIo YSxJ6VdhuLxAKZZvoLZdZdwXlGIxIObECw8HolXYwiJxWrWblpSMBO5FNN9wRgNK QqxtRCsT7SD2XanVE7lR2i2ts/jNHrxFSB8JbAQTEnov//W2TcBvoB6QO6/EYCuH 8Q+6kdlVy5V2kvaLqZQ7AH4j+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLMZLJU9 j2OrkQMYYZQRbg8/VDmeMB8GA1UdIwQYMBaAFJEzhpDeuleM5zghip4iCFTRtSdf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjA1Qi85ODE3RDI3MjY0 Q0MxMUVDOTZENEE1NThDNEY5QUUwMi9rVE9Ha042NlY0em5PQ0dLbmlJSVZORzFK MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tUT0drTjY2VjR6bk9DR0tuaUlJVk5HMUoxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjA1Qi85ODE3RDI3MjY0Q0MxMUVDOTZENEE1NThDNEY5QUUwMi9rVE9Ha042NlY0 em5PQ0dLbmlJSVZORzFKMTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtuz1dv+rGZmYQh2K+YhViGATrs1ID57uih3av9eXaHM+m468Mfkah YB+y5AtxdrWQ7G1cg+GG6yGresAFR59nymfuMjZI7MSGyZlw2JH7Vz5taowdCDjR 01lCVORvMoQ8VczoGuvJVVl833bsaajjD3z9ekj+rS+S0dVT89KOT9/Sk/2ltgqL vNmpWkcKgQvLx+G9Cw1xEu9bwYsg9InLRSTcQGkgyisJKDOYfdRQsFgjCq8WbUew JJAJlwt2Hcj7fuJIC6pyS6p6+Mz8OJ3lOfDNKk5j7wSFeAJQhHhjxp3NZUM6r5hj +AeoJGiYUCSLFyR66XxsEoT4zyHfIcGg -----END CERTIFICATE-----Generated at Mon Oct 20 12:17:31 2025 by rpki-client